Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2531 6.5 警告
Network 		Pterodactyl Wings PterodactylのWingsにおける複数の脆弱性 CWE-400
CWE-770
CWE-770
CVE-2025-69199 2026-02-4 18:37 2026-01-19 Show GitHub Exploit DB Packet Storm
2532 9.8 緊急
Network 		fabianros Mobile Shop Management System In PHP With Source Code Fabian RosのMobile Shop Management System In PHP With Source Codeにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2025-69564 2026-02-4 18:37 2026-01-27 Show GitHub Exploit DB Packet Storm
2533 6.5 警告
Network 		PHPGurukul Online Course Registration PHPGurukulのOnline Course Registrationにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2025-70899 2026-02-4 18:37 2026-01-22 Show GitHub Exploit DB Packet Storm
2534 7.3 重要
Local 		Lenovo app store Lenovoのapp storeにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2025-8485 2026-02-4 18:37 2025-11-12 Show GitHub Exploit DB Packet Storm
2535 7.8 重要
Local 		Lenovo PCManager LenovoのPCManagerにおける不要な特権による実行に関する脆弱性 CWE-250
不要な特権による実行 		CVE-2025-8486 2026-02-4 18:37 2025-10-15 Show GitHub Exploit DB Packet Storm
2536 4.9 警告
Network 		M-Files M-Files Server M-FilesのM-Files Serverにおける入力の構文的正当性の検証に関する脆弱性 CWE-1286
入力の構文的正当性の不適切な検証 		CVE-2026-0663 2026-02-4 18:37 2026-01-21 Show GitHub Exploit DB Packet Storm
2537 6.1 警告
Network 		plantuml plantuml plantumlにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-0858 2026-02-4 18:37 2026-01-16 Show GitHub Exploit DB Packet Storm
2538 9.8 緊急
Network 		itsourcecode School Management System itsourcecodeのSchool Management Systemにおける複数の脆弱性 CWE-74
CWE-89
CVE-2026-1176 2026-02-4 18:37 2026-01-19 Show GitHub Exploit DB Packet Storm
2539 4.6 警告
Local 		Esri ArcGIS Pro EsriのArcGIS Proにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-1446 2026-02-4 18:37 2026-01-26 Show GitHub Exploit DB Packet Storm
2540 6.1 警告
Network 		NHN Japan billboard.js NHN Japanのbillboard.jsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-1513 2026-02-4 18:37 2026-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348051 - easy_software_products
apple 		cups
mac_os_x
mac_os_x_server 		ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions. NVD-CWE-Other
CVE-2004-0927 2008-09-6 05:39 2005-01-27 Show GitHub Exploit DB Packet Storm
348052 - - - The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 generates easily predictable web session IDs, which allows remote attackers to hijack other sessio… NVD-CWE-Other
CVE-2004-0944 2008-09-6 05:39 2004-02-28 Show GitHub Exploit DB Packet Storm
348053 - mitel mitel_3300_integrated_communication_platform The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 allows remote authenticated users to cause a denial of service (resource exhaustion) via a large n… NVD-CWE-Other
CVE-2004-0945 2008-09-6 05:39 2005-02-28 Show GitHub Exploit DB Packet Storm
348054 - stonesoft firewall_engine The H.323 protocol agent in StoneSoft firewall engine 2.2.8 and earlier allows remote attackers to cause a denial of service (crash) via crafted H.323 packets. NVD-CWE-Other
CVE-2004-0498 2008-09-6 05:38 2004-12-31 Show GitHub Exploit DB Packet Storm
348055 - university_of_minnesota gopherd Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted content of a certain size that triggers the over… NVD-CWE-Other
CVE-2004-0560 2008-09-6 05:38 2004-12-31 Show GitHub Exploit DB Packet Storm
348056 - university_of_minnesota gopherd Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code. NVD-CWE-Other
CVE-2004-0561 2008-09-6 05:38 2004-12-31 Show GitHub Exploit DB Packet Storm
348057 - phpgroupware phpgroupware Multiple SQL injection vulnerabilities in the (1) calendar and (2) infolog modules for phpgroupware 0.9.14 allow remote attackers to perform unauthorized database operations. NVD-CWE-Other
CVE-2004-0017 2008-09-6 05:37 2004-02-3 Show GitHub Exploit DB Packet Storm
348058 - mod_auth_shadow mod_auth_shadow The mod_auth_shadow module 1.4 and earlier does not properly enforce the expiration of a user account and password, which could allow remote authenticated users to bypass intended access restrictions. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-0041 2008-09-6 05:37 2004-02-3 Show GitHub Exploit DB Packet Storm
348059 - realnetworks helix_universal_mobile_server
helix_universal_server 		Helix Universal Server/Proxy 9 and Mobile Server 10 allow remote attackers to cause a denial of service via certain HTTP POST messages to the Administration System port. NVD-CWE-Other
CVE-2004-0049 2008-09-6 05:37 2004-02-17 Show GitHub Exploit DB Packet Storm
348060 - nortel business_communications_manager
802.11_wireless_ip_gateway
succession_communication_server_1000 		Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gatewa… NVD-CWE-Other
CVE-2004-0056 2008-09-6 05:37 2004-02-17 Show GitHub Exploit DB Packet Storm